11.5 给WebSocket加密 

    上面的应用程序虽然工作的很好,但是在网络上收发消息存在很大的安全隐患,所以有必要对消息进行加密。添加这样一个加密的功能一般比较复杂,需要对代码有较大的改动。但是使用Netty就可以很容易的添加这样的功能,只需要将SslHandler加入到ChannelPipeline中就可以了。实际上还需要添加SslContext,但这不在本例子范围内。

    首先我们创建一个用于添加加密Handler的handler初始化类,看下面代码:

[java] view plaincopy

  1. package netty.in.action;
  3. import io.netty.channel.Channel;
  4. import io.netty.channel.group.ChannelGroup;
  5. import io.netty.handler.ssl.SslHandler;
  7. import javax.net.ssl.SSLContext;
  8. import javax.net.ssl.SSLEngine;
  10. public class SecureChatServerIntializer extends ChatServerInitializer {
  11. private final SSLContext context;
  13. public SecureChatServerIntializer(ChannelGroup group,SSLContext context) {
  14. super(group);
  15. this.context = context;
  16. }
  18. @Override
  19. protected void initChannel(Channel ch) throws Exception {
  20. super.initChannel(ch);
  21. SSLEngine engine = context.createSSLEngine();
  22. engine.setUseClientMode(false);
  23. ch.pipeline().addFirst(new SslHandler(engine));
  24. }

  25. }

    最后我们创建一个用于引导配置的类,看下面代码:

[java] view plaincopy

  1. package netty.in.action;
  3. import io.netty.channel.Channel;
  4. import io.netty.channel.ChannelFuture;
  5. import io.netty.channel.ChannelInitializer;
  6. import io.netty.channel.group.ChannelGroup;
  7. import java.net.InetSocketAddress;
  8. import javax.net.ssl.SSLContext;
  10. /**
    • @author c.k
  15. */
  16. public class SecureChatServer extends ChatServer {
  17. private final SSLContext context;
  19. public SecureChatServer(SSLContext context) {
  20. this.context = context;
  21. }
  23. @Override
  24. protected ChannelInitializer<Channel> createInitializer(ChannelGroup group) {
  25. return new SecureChatServerIntializer(group, context);
  26. }
  28. /**
    • 获取SSLContext需要相关的keystore文件,这里没有 关于HTTPS可以查阅相关资料,这里只介绍在Netty中如何使用
    • @return
  32. */
  33. private static SSLContext getSslContext() {
  34. return null;
  35. }
  37. public static void main(String[] args) {
  38. SSLContext context = getSslContext();
  39. final SecureChatServer server = new SecureChatServer(context);
  40. ChannelFuture future = server.start(new InetSocketAddress(4096));
  41. Runtime.getRuntime().addShutdownHook(new Thread() {
  42. @Override
  43. public void run() {
  44. server.destroy();
  45. }
  46. });
  47. future.channel().closeFuture().syncUninterruptibly();
  48. }
  49. }

results matching ""

    No results matching ""